Background
Pipeline Pilot Server supports secure connectivity using SSL over HTTPS to ensure that sensitive data is communicated securely between the server and client applications. OpenSSL enables support for TLS and SSL protocols.
Up to version 2017, included, we could support up to TLS 1.1, which is no longer recommended.
Solution
Starting 2017R2 we include support for TLS 1.2.
With the release of 2020 we provide support for TLS 1.3
Enclose list of releases and the OpenSSL build used
Release | User Story | Description |
2021 | PPC-9636 | OpenSSL has been updated to version 1.1.1g |
2020 | PPC-8202 | Upgraded OpenSSL to version 1.1.1c. This enables support for TLS 1.3 for both incoming connections to the Pipeline Pilot Server and outgoing connections from components to remote services. |
2019 | PPC-8832 | Updated OpenSSL to the latest available 1.0.2 version. (1.0.2p) |
2018 | PPC-8246 | Updated to OpenSSL version 1.0.2l |
2017R2 | PPC-5814 | OpenSSL has been upgraded from 0.9.8 to 1.0.2j. As a result, all use of https within the server including incoming https connections to the Pipeline Pilot Apache server, outgoing HTTPS connections from the HTTP Connector and File Readers, and SSL connections from within Perl components are now capable of supporting TLS 1.0, 1.1, 1.2 and the modern set of SSL encryption ciphers. SSL v3 has been completely removed from support as have many older weak ciphers. |
2017 | PPC-9636 | No changes |
2016 | PPC-7257 | Updated the OpenSSL version included with the server and client to 0.9.8zg |
We encourage customers to perform regular upgrades to comply with security standards.
How to contact BIOVIA Support
If you have any questions, please contact BIOVIA Support.
Same information published as TechNote
https://www.3ds.com/support/news/single/t63-2021-biovia-pipeline-pilot-tls-support-level/
